Lucene search
K

213 matches found

Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.6 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986403)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986403 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: fix double free race when mount fails in cifsgetroot When cifsgetroot fails during...

7.8CVSS5.9AI score0.00224EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414511)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414511 advisory. A denial of service DOS issue was found in the Linux kernels smb2ioctlqueryinfo function in the fs/cifs/smb2ops.c Common Internet File System CIFS due to an incorrec...

4.4CVSS6.5AI score0.00261EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/10/04 12:0 a.m.6 views

PT-2025-40756

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue where a folio lock is leaked when fscache is in use and a cache hit occurs during a read operation. This occurs because the cifs readpage worker functi...

6.5AI score0.00135EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-30362

Malicious code in bioql PyPI...

6.3AI score0.00146EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-55373

Malicious code in bioql PyPI...

7.1AI score0.00154EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-55611

Malicious code in bioql PyPI...

6.3AI score0.00143EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-27882

Malicious code in bioql PyPI...

6.3AI score0.00143EPSS
Exploits0References3
CVE
CVE
added 2025/10/01 11:45 a.m.14 views

CVE-2022-50460

The CVE-2022-50460 issue is in the Linux kernel CIFS logic: an xid leak in cifs_flock() when flock is used can leak xid on early return (-ENOLCK). Multiple connected advisories (Astra Linux, Unity Linux, EulerOS, SUSE) cite the same description and confirm a fix in the kernel. The vulnerability i...

5.5CVSS6.1AI score0.00145EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/09/19 3:26 p.m.6 views

CVE-2025-39838 cifs: prevent NULL pointer dereference in UTF16 conversion

In the Linux kernel, the following vulnerability has been resolved: cifs: prevent NULL pointer dereference in UTF16 conversion There can be a NULL pointer dereference bug here. NULL is passed to cifssfumakenode without checks, which passes it unchecked to cifsstrnduptoutf16, which in turn passes ...

5.5CVSS6AI score0.00146EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2025/09/19 3:26 p.m.7 views

CVE-2025-39838

In the Linux kernel, the following vulnerability has been resolved: cifs: prevent NULL pointer dereference in UTF16 conversion There can be a NULL pointer dereference bug here. NULL is passed to cifssfumakenode without checks, which passes it unchecked to cifsstrnduptoutf16, which in turn passes ...

5.5CVSS5.3AI score0.00146EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/09/19 12:0 a.m.6 views

PT-2025-38545

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw where a NULL pointer dereference can occur during UTF16 conversion within the CIFS implementation. Specifically, a NULL pointer can be passed to the cifs...

5.5CVSS6.1AI score0.00146EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/09/18 11:38 p.m.8 views

SUSE CVE-2023-53377

In the Linux kernel, the following vulnerability has been resolved: cifs: prevent use-after-free by freeing the cfile later In smb2compoundop we have a possible use-after-free which can cause hard to debug problems later on. This was revealed during stress testing with KASAN enabled kernel. Fixin...

5.5CVSS6.5AI score0.00138EPSS
Exploits0References19
OSV
OSV
added 2025/09/18 2:15 p.m.2 views

UBUNTU-CVE-2023-53377

In the Linux kernel, the following vulnerability has been resolved: cifs: prevent use-after-free by freeing the cfile later In smb2compoundop we have a possible use-after-free which can cause hard to debug problems later on. This was revealed during stress testing with KASAN enabled kernel. Fixin...

7.8CVSS5.7AI score0.00138EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/09/18 12:0 a.m.4 views

PT-2025-38446

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc5+ 82 Description A use-after-free UAF issue exists in the CIFS implementation of the Linux kernel. Specifically, the issue occurs when destroying the Message Response MR list. If MR allocation fails, the...

6.3AI score0.0014EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2025/09/17 11:31 p.m.3 views

SUSE CVE-2022-50351

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix xid leak in cifscreate If the cifs already shutdown, we should free the xid before return, otherwise, the xid will be leaked...

5.5CVSS6.5AI score0.00143EPSS
Exploits0References8
NVD
NVD
added 2025/09/17 3:15 p.m.5 views

CVE-2022-50372

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix memory leak when build ntlmssp negotiate blob failed There is a memory leak when mount cifs: unreferenced object 0xffff888166059600 size 448: comm "mount.cifs", pid 51391, jiffies 4295596373 age 330.596s hex dump first ...

5.5CVSS0.00168EPSS
Exploits0References2
OSV
OSV
added 2025/09/17 2:56 p.m.6 views

CVE-2022-50372 cifs: Fix memory leak when build ntlmssp negotiate blob failed

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix memory leak when build ntlmssp negotiate blob failed There is a memory leak when mount cifs: unreferenced object 0xffff888166059600 size 448: comm "mount.cifs", pid 51391, jiffies 4295596373 age 330.596s hex dump first ...

5.5CVSS6.7AI score0.00168EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/09/16 4:11 p.m.7 views

CVE-2022-50341 cifs: fix oops during encryption

In the Linux kernel, the following vulnerability has been resolved: cifs: fix oops during encryption When running xfstests against Azure the following oops occurred on an arm64 system Unable to handle kernel write to read-only memory at virtual address ffff0001221cf000 Mem abort info: ESR =...

0.00096EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/09/16 12:0 a.m.5 views

PT-2025-38020

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel’s CIFS implementation within the cifs create function. If CIFS shuts down, the transaction ID xid is not freed before returning, leading to an xid lea...

5.9AI score0.00143EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-53246

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cifs: fix DFS traversal oops without CONFIGCIFSDFSUPCALL When compiled with CONFIGCIFSDFSUPCALL disabled, cifsdfsdautomount is NULL. cifs.ko logic for mapping...

5.5CVSS6.2AI score0.00136EPSS
Exploits0References3
Rows per page
Query Builder